CVE-2012-2170 in WebSphere Application Serverinformation

Résumé

par MITRE

The Application Snoop Servlet in IBM WebSphere Application Server 7.0 before 7.0.0.23 does not properly restrict access, which allows remote attackers to obtain sensitive client and request information via a direct request.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Réserver

04/04/2012

Divulgation

20/06/2012

Modérer

accepté

Entrée

VDB-5476

CPE

prêt

CWE

CWE-264 (confirmé)

CVSS

4.3 (NVD)

EPSS

0.02394

KEV

non

Activités

très faible

Secteur

Industry, Transportation, ...

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-2170
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-2170
CVE Details	https://www.cvedetails.com/cve/CVE-2012-2170/

◂ Précédent Aperçu Suivant ▸

Do you need the next level of professionalism?

Upgrade your account now!